CVE-2015-0238 — Sensitive Information Exposure in Redhat Openshift

CWE-200 — Sensitive Information Exposure5 documents5 sources
Severity
3.3LOWNVD
EPSS
0.0%
top 87.75%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Redhat Openshift
Timeline
PublishedSep 26
Latest updateMay 17

Description

selinux-policy as packaged in Red Hat OpenShift 2 allows attackers to obtain process listing information via a privilege escalation attack.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NExploitability: 1.8 | Impact: 1.4

Affected Packages1 packages

â–¶NVDredhat/openshift2.0

🔴Vulnerability Details

2
GHSA
GHSA-vmxg-xhmf-mrv5: selinux-policy as packaged in Red Hat OpenShift 2 allows attackers to obtain process listing information via a privilege escalation attack↗2022-05-17
â–¶
CVEList
CVE-2015-0238: selinux-policy as packaged in Red Hat OpenShift 2 allows attackers to obtain process listing information via a privilege escalation attack↗2017-09-25
â–¶

📋Vendor Advisories

1
Red Hat
OpenShift: selinux-policy privilege escalation to reveal process listing↗2015-01-22
â–¶

💬Community

1
Bugzilla
CVE-2015-0238 OpenShift: selinux-policy privilege escalation to reveal process listing↗2015-01-22
â–¶
CVE-2015-0238 — Sensitive Information Exposure | cvebase